{"uuid": "f60e8950-c9f4-470c-bc62-fd7aec94fa94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38694", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3085", "content": "25 Tools \ud83d\udd27  \ud83d\udd28\ud83d\udd27 - Hackers Factory\n\n\u200b\u200bPython3 C2 Course Code Modules\n\n\u2022 SMTP Module\n\u2022 File Transfer Module\n\u2022 Securing Your Payload Channels\n\nhttps://github.com/dievus/Python3-C2-Course-Code-Modules\n\n#infosec #pentesting #redteam\n\n\u200b\u200bRedTeamScripts\n\nThis repo will contain some random Red Team Scripts that I made that can be useful for others.\n\nhttps://github.com/api0cradle/RedTeamScripts\n\n#infosec #pentesting #redteam\n\n\u200b\u200bHBSQLI\n\nAutomated tool for testing header based blind sql injection.\n\nhttps://github.com/SAPT01/HBSQLI\n\n#infosec #pentesting #bugbounty\n\n\u200b\u200bCVE-2022-38694\n\nAn attacker with physical access to the device can overwrite a function pointer somewhere in the BootROM data section or a return address stored on the stack and execute their own code with BootROM privileges.\n\nhttps://github.com/TomKing062/CVE-2022-38694_unlock_bootloader\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bDopamine\n\nA semi-untethered permasigned jailbreak for iOS 15\n\nhttps://github.com/opa334/Dopamine\n\n#cybersecurity #infosec\n\n\u200b\u200bebpfmon\n\nA tool for monitoring eBPF programs. It is designed to be used with bpftool from the linux kernel. ebpfmon is a TUI (terminal UI) application written in Go that allows you to do real-time monitoring of eBPF programs.\n\nhttps://github.com/redcanaryco/ebpfmon\n\n#cybersecurity #infosec\n\n\u200b\u200bBaseComp\n\nA Comparative Analysis for Integrity Protection in Cellular Baseband Software\n\nhttps://github.com/kaist-hacking/BaseComp\n\n#cybersecurity #infosec\n\n\u200b\u200bZehef\n\nA osint tool who studies the emails \ud83d\udce9\n\nhttps://github.com/N0rz3/Zehef\n\n#OSINT #cybersecurity #infosec\n\n\u200b\u200bgzip-js-injector\n\nGZIP Page Zero Overhead Injection.\n\nhttps://github.com/EtherDream/gzip-js-injector\n\n#infosec #pentesting #redteam\n\n\u200b\u200btelegram-tracker\n\nThe package connects to Telegram's API to generate JSON files containing data for channels, including information and posts. It allows you to search for specific channels or a set of channels provided in a text file, with one channel per line.\n\nhttps://github.com/estebanpdl/telegram-tracker\n\n#OSINT #cybersecurity #infosec\n\n\u200b\u200bOne-Liner-Collections\n\nThis Repositories contains list of One Liners with Descriptions and Installation requirements.\nhttps://github.com/thecybertix/One-Liner-Collections\n\n#infosec #pentesting #bugbounty\n\n\u200b\u200bPayloads All The PDFs\n\nA list of crafted malicious PDF files to test the security of PDF readers and tools.\n\nhttps://github.com/luigigubello/PayloadsAllThePDFs\n\n#cybersecurity #infosec #pentesting\n\n\u200b\u200busb-sniffer\n\nLow-cost LS/FS/HS USB sniffer with Wireshark interface. This sniffer can be used standalone from a command line or as a plugin for Wireshark with direct control from the UI. Either way, the capture is saved in a standard PcapNG format.\n\nhttps://github.com/ataradov/usb-sniffer\n\n#cybersecurity #infosec #pentesting\n\n\u200b\u200bNucleiFuzzer \n\nA powerful automation tool for detecting xss,sqli,ssrf,open-redirect..etc vulnerabilities in web applications.\n\nhttps://github.com/0xKayala/NucleiFuzzer\n\n#infosec #pentesting #bugbounty\n\n\u200b\u200bAirGuard\n\nProtect yourself from being tracked \ud83c\udf0d by #AirTags \ud83c\udff7 and Find My accessories \ud83d\udccd\n\nhttps://github.com/seemoo-lab/AirGuard\n\n\u200b\u200bVulnerability_PoC\n\nThe PoC/Exploit of some interesting vulnerabilities.\n\nhttps://github.com/numencyber/Vulnerability_PoC\n\n#cybersecurity #infosec\n\n\u200b\u200bSecurity Research\n\nThis project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.\n\nhttps://github.com/google/security-research\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bPHP Cookie Stealer\n\nThis project is a simple PHP script used to demonstrate how an attacker can steal cookies. It captures the victim's cookie, IP address, user agent, and geographical details, and then logs this information.\n\nhttps://github.com/noxvix/Xss-Exploitation\n\n#infosec #pentesting #redteam\n\n\u200b\u200bCVE-2023-23333\n\nSolarView Compact through 6.00 downloader.php commands injection (RCE) nuclei-templates.\n\nhttps://github.com/Mr-xn/CVE-2023-23333\n\n#cve #cybersecurity #infosec\n\n1/2", "creation_timestamp": "2023-06-18T13:18:19.000000Z"}